API struggles and also no ticket

[NathanD]

We are running on SpamExperts at this moment, but because we are already using Proxmox VE and SpamExperts is not software we like, we are looking into Proxmox Mail Gateway.

To get the domains in the PMG, we would like to use the API, but the documentation isn`t really straight forward (some examples would be helpful). I made a simple script for adding a domain, but the response is HTTP request failed! HTTP/1.0 401 No ticket.

    $url = 'https://1xx.xx.xxx.251:8006/api2/json/config/domains/';
    $cn_match = 'pmg.domain.tld';

    $data = array("domain" => "exampledomain.com", "comment" => "Imported");

    // use key 'http' even if you send the request to https://...
    $options = array(
        'http' => array(
            'header'  => "Content-Type: application/json\r\n",
            'method'  => 'PUT',
            'content' => http_build_query($data)
            )
        , 'ssl' => array(
            'verify_peer' => false,
            'cafile' => "./cacert.pem",
            'ciphers' => 'HIGH:TLSv1.2:TLSv1.1:TLSv1.0:!SSLv3:!SSLv2',
            'CN_match' => $cn_match,
            'disable_compression' => true,
        'verify_peer_name'=>false,
            )
        );

    $context  = stream_context_create($options);
    $response = file_get_contents($url, false, $context);

It would be great if someone can help me out with a working example, so I can work on that to get things running.

 

[oguz]

hi,

HTTP request failed! HTTP/1.0 401 No ticket.

you need to create an authentication ticket by passing valid credentials, and afterwards you need to pass the ticket with all your later requests.

see the api-viewer[0] for more info. it is in access/ticket

[0]: https://pmg.proxmox.com/pmg-docs/api-viewer/index.html

 

[Stoiko Ivanov]

Check out the wiki page for the PVE-API (the workings are similar for PMG) - https://pve.proxmox.com/wiki/Proxmox_VE_API

I hope this helps!

 

[NathanD]

hi,

you need to create an authentication ticket by passing valid credentials, and afterwards you need to pass the ticket with all your later requests.

Hi,

Sorry, I do first this (the rest of the script looks the same):

    $url = 'https://1xx.xx.xxx.251:8006/api2/json/access/ticket/';
    $cn_match = 'pmg.domain.tld';

    $data = array("username" => "nathand", "password" => "xxxxxx", "realm" => "pmg");

And after that the second one (add domain) is running. But the authentication one also gives the 401 no ticket, so I'm still missing something.

 

[oguz]

hi,

But the authentication one also gives the 401 no ticket, so I'm still missing something.

you need to get the authentication working first in any case.

do you send a POST request to api2/json/access/ticket with the parameters username, password? (realm isn't needed. you can use username@realm for the username parameter). once successful, it should return ticket and CSRFPreventionToken which you then pass to your next requests.